package ynu.edu.interceptor;

import lombok.RequiredArgsConstructor;
import lombok.extern.slf4j.Slf4j;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Component;
import org.springframework.web.method.HandlerMethod;
import org.springframework.web.servlet.HandlerInterceptor;
import ynu.edu.config.BaseContext;
import ynu.edu.utils.JwtTool;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

/**
 * jwt令牌校验的拦截器
 */
@Component
@Slf4j
@RequiredArgsConstructor
public class JwtTokenInterceptor implements HandlerInterceptor {

    private final JwtTool jwtTool;

    /**
     * 校验jwt
     *
     * @param request
     * @param response
     * @param handler
     * @return
     * @throws Exception
     */
    public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {

        // 获取请求url
        String url = request.getRequestURL().toString();
        log.info("请求的url: {}", url);

        //判断当前拦截到的是Controller的方法还是其他资源
        if (!(handler instanceof HandlerMethod)) {
            //当前拦截到的不是动态方法，直接放行
            return true;
        }

        // 放行Knife4j的文档请求（根据你的实际路径调整）
        String requestURI = request.getRequestURI();
        if (requestURI.startsWith("/doc.html") || requestURI.startsWith("/swagger-resources") || requestURI.startsWith("/v2/api-docs")) {
            return true;
        }

        // 如果是登录请求，直接放行
        if (url.contains("login") || url.contains("register") || url.contains("reset-pwd")
                || url.contains("model-config") || url.contains("stable-diffusion") || url.contains("text2img") || url.contains("img2img")
                || url.contains("control-net") ||  url.contains("hanzi") || url.contains("controlnet")) {
            log.info("登录或注册操作, 放行...");
            return true;
        }

        //1、从请求头中获取令牌
        String token = request.getHeader("token");

        // 检查 token 的有效性
        if (token == null || !token.contains(".")) {
            response.setStatus(HttpServletResponse.SC_UNAUTHORIZED);
            return false;
        }

        //2、校验令牌
        try {
            log.info("jwt校验:{}", token);
            Long uid = jwtTool.parseToken(token);
            BaseContext.setCurrentId(uid);
            log.info("当前员工id：{}", uid);
            //3、通过，放行
            return true;
        } catch (Exception ex) {
            //4、不通过，响应401状态码
            log.error("JWT校验失败: {}", ex.getMessage());
            response.setStatus(401);
            return false;
        }
    }
}
